CVE-2025-59825 | astral-sh tokio-tar up to 0.5.3 Entry::unpack_in_raw path traversal (ID 12163)

A vulnerability labeled as critical has been found in astral-sh tokio-tar up to 0.5.3. The affected element is the function Entry::unpack_in_raw. The manipulation results in path traversal.

This vulnerability is known as CVE-2025-59825. Attacking locally is a requirement. No exploit is available.

The affected component should be upgraded.VulDB Recent EntriesRead More